Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/EWF8zw4zN5FJmet4ofrfKCC2jA8.roa
File: EWF8zw4zN5FJmet4ofrfKCC2jA8.roa (raw, json)
Hash identifier: 1+1bvCf2RXpZrjs99OIGIa6uYnBpSxu5xvbS/gXrMko=
Subject key identifier: 11:61:7C:CF:0E:33:37:91:49:99:EB:78:A1:FA:DF:28:20:B6:8C:0F
Certificate issuer: /CN=d73e83146a43869f657451e76d0a305f15a7aee9
Certificate serial: 018CC725F38A32DE4B873F8FDAB24F91A5AE
Authority key identifier: D7:3E:83:14:6A:43:86:9F:65:74:51:E7:6D:0A:30:5F:15:A7:AE:E9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1z6DFGpDhp9ldFHnbQowXxWnruk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/EWF8zw4zN5FJmet4ofrfKCC2jA8.roa
Signing time: Mon 01 Jan 2024 22:30:02 +0000
ROA not before: Mon 01 Jan 2024 22:30:02 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9051
IP address blocks: 80.77.176.0/20 maxlen: 24
185.125.152.0/22 maxlen: 24
2a06:b880::/29 maxlen: 48
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/1z6DFGpDhp9ldFHnbQowXxWnruk.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/1z6DFGpDhp9ldFHnbQowXxWnruk.mft
rsync://rpki.ripe.net/repository/DEFAULT/1z6DFGpDhp9ldFHnbQowXxWnruk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 21 Jun 2024 03:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:25:f3:8a:32:de:4b:87:3f:8f:da:b2:4f:91:a5:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d73e83146a43869f657451e76d0a305f15a7aee9
Validity
Not Before: Jan 1 22:30:02 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=11617ccf0e3337914999eb78a1fadf2820b68c0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:61:3f:a5:cd:93:a7:d5:1f:8d:fb:24:72:12:
1b:71:80:a5:c1:da:52:47:28:f6:cd:5e:f8:29:4f:
dc:b5:55:b4:78:7a:ec:0a:75:f0:89:35:d6:94:c9:
b9:28:7c:26:75:c5:0a:ee:16:ae:57:0c:19:0b:e7:
02:d6:09:0e:d7:2f:39:6e:bf:e6:87:dc:1e:7c:8c:
77:23:5b:a7:1a:84:90:de:de:de:29:4d:db:99:a8:
a5:af:96:1b:90:fd:3a:92:c7:fd:18:4e:f5:f1:15:
51:ff:9d:18:d8:09:69:ec:94:51:a0:87:02:1e:ff:
4c:dd:18:c0:6a:60:6d:64:76:f9:ee:21:fe:bd:a1:
d9:99:e3:3b:e6:3c:db:4d:34:1b:27:b5:fe:0e:5e:
a2:12:af:b1:66:63:c3:e6:33:b4:cb:b3:b2:a9:76:
95:c9:e7:53:4b:e0:71:1f:e6:69:58:33:68:2e:b3:
c4:61:38:5f:b5:02:d6:60:06:b0:1a:83:a7:3e:1b:
48:d4:90:ad:70:97:54:b6:0e:f7:97:6b:4b:7f:82:
0a:8a:78:7a:6e:ed:01:f7:c0:47:9b:89:d7:8d:fa:
09:3a:06:75:52:2e:de:59:ff:7e:27:34:cd:2f:f0:
34:34:7c:03:53:2b:87:de:80:e3:85:c6:44:ba:40:
f1:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:61:7C:CF:0E:33:37:91:49:99:EB:78:A1:FA:DF:28:20:B6:8C:0F
X509v3 Authority Key Identifier:
keyid:D7:3E:83:14:6A:43:86:9F:65:74:51:E7:6D:0A:30:5F:15:A7:AE:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1z6DFGpDhp9ldFHnbQowXxWnruk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/EWF8zw4zN5FJmet4ofrfKCC2jA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/0f6470-e7f4-4151-8ad9-d3b27a0225b0/1/1z6DFGpDhp9ldFHnbQowXxWnruk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.77.176.0/20
185.125.152.0/22
IPv6:
2a06:b880::/29
Signature Algorithm: sha256WithRSAEncryption
a0:4c:6c:1d:19:c2:e8:ff:96:14:67:c5:12:60:a9:d5:ed:fe:
be:c7:23:3a:1a:eb:d8:b2:f7:96:fc:d4:b2:6d:c2:56:3d:44:
7a:30:52:d6:30:f8:84:b6:1e:07:76:1b:ad:c7:93:2b:f5:5c:
a5:0a:15:70:1c:ce:c9:b5:38:11:7e:7c:56:32:36:30:03:6e:
a5:be:e7:f1:5b:b0:22:00:86:1c:9d:84:21:61:1a:03:f4:4e:
ba:d6:bc:e1:89:28:6a:12:84:7d:03:31:c5:40:3d:10:2d:b3:
67:53:f8:07:b0:8d:b2:2d:b9:26:f8:20:d8:c9:dd:5e:59:04:
40:73:ac:15:1b:81:03:bd:41:bd:18:d4:91:9f:06:d5:79:8a:
70:31:e6:1e:8a:0a:5d:1f:67:72:f4:d3:2d:1e:db:61:7d:ee:
76:79:2e:85:d9:b5:92:ca:13:ea:ac:a7:da:51:99:9a:4c:e7:
6b:5f:29:73:07:90:fa:af:1a:af:8f:72:ba:2a:05:e6:5b:1f:
0a:38:d4:95:8e:15:17:d5:c6:d3:83:f4:ef:22:b3:55:04:72:
9c:2e:19:db:d6:e5:7f:c6:4a:4e:e7:ac:41:2e:43:c1:9f:f4:
be:bf:89:b1:2c:e3:f3:d1:5c:dc:5c:79:8e:f3:eb:ef:39:b5:
f4:41:d3:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 20 10:54:45 2024 by rpki-client on console-ams.rpki-client.org